Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1374
Views
0
Helpful
1
Replies

Packet tracer in FTD limitations?

Go to solution
tiwang
Level 3
Level 3

‎01-14-2021 06:22 AM

hi out there

 

I just got a bit surpriesed when I was chasing a "hit" in a ACL on a firepower 4110 running FTD OS 6.6.1 - we have ACL whcih is pretty high - near the top - of the policy - which is pretty open but based on AD-group membership. 

When I ran a packet tracer to verify where I get a hit it was on this ACL and not on the one I expected. Can some confirm to me that this is just because that the Packet Tracer under FTD is not capable of using the AD group membership - which would make sense.

 

br ti

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎01-14-2021 09:07 AM

That's an interesting outcome. On the surface I would agree with your observation although I haven't seen that particular limitation discussed or documented before now.

I'd recommend opening a TAC case to confirm it and making sure a bug is filed (if there's not one already).

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎01-14-2021 09:07 AM

That's an interesting outcome. On the surface I would agree with your observation although I haven't seen that particular limitation discussed or documented before now.

I'd recommend opening a TAC case to confirm it and making sure a bug is filed (if there's not one already).

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card